diff --git a/lib/ansible/module_utils/ovirt.py b/lib/ansible/module_utils/ovirt.py
new file mode 100644
index 0000000000..3b6c11eb0a
--- /dev/null
+++ b/lib/ansible/module_utils/ovirt.py
@@ -0,0 +1,565 @@
+# -*- coding: utf-8 -*-
+# Copyright (c) 2016 Red Hat, Inc.
+# This file is part of Ansible
+# Ansible is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+# Ansible is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# GNU General Public License for more details.
+# You should have received a copy of the GNU General Public License
+# along with Ansible. If not, see .
+import inspect
+import time
+from abc import ABCMeta, abstractmethod
+from datetime import datetime
+from distutils.version import LooseVersion
+from enum import Enum
+ import ovirtsdk4 as sdk
+ import ovirtsdk4.types as otypes
+ import ovirtsdk4.version as sdk_version
+ HAS_SDK = LooseVersion(sdk_version.VERSION) >= LooseVersion('4.0.0')
+except ImportError:
+ HAS_SDK = False
+ 'kib': 2**10,
+ 'mib': 2**20,
+ 'gib': 2**30,
+ 'tib': 2**40,
+ 'pib': 2**50,
+def check_sdk(module):
+ if not HAS_SDK:
+ module.fail_json(
+ msg='ovirtsdk4 version 4.0.0 or higher is required for this module'
+ )
+def get_dict_of_struct(struct):
+ """
+ Convert SDK Struct type into dictionary.
+ """
+ def remove_underscore(val):
+ if val.startswith('_'):
+ val = val[1:]
+ remove_underscore(val)
+ return val
+ res = {}
+ if struct is not None:
+ for key, value in struct.__dict__.items():
+ key = remove_underscore(key)
+ if value is None:
+ continue
+ elif isinstance(value, sdk.Struct):
+ res[key] = get_dict_of_struct(value)
+ elif isinstance(value, Enum) or isinstance(value, datetime):
+ res[key] = str(value)
+ elif isinstance(value, list):
+ res[key] = []
+ for i in value:
+ if isinstance(i, sdk.Struct):
+ res[key].append(get_dict_of_struct(i))
+ elif isinstance(i, Enum):
+ res[key].append(str(i))
+ else:
+ res[key].append(i)
+ else:
+ res[key] = value
+ return res
+def create_connection(auth):
+ """
+ Create a connection to Python SDK, from task `auth` parameter.
+ If user doesnt't have SSO token the `auth` dictionary has following parameters mandatory:
+ url, username, password
+ If user has SSO token the `auth` dictionary has following parameters mandatory:
+ url, token
+ The `ca_file` parameter is mandatory in case user want to use secure connection,
+ in case user want to use insecure connection, it's mandatory to send insecure=True.
+ :param auth: dictionary which contains needed values for connection creation
+ :return: Python SDK connection
+ """
+ return sdk.Connection(
+ url=auth.get('url'),
+ username=auth.get('username'),
+ password=auth.get('password'),
+ ca_file=auth.get('ca_file', None),
+ insecure=auth.get('insecure', False),
+ token=auth.get('token', None),
+ kerberos=auth.get('kerberos', None),
+ )
+def convert_to_bytes(param):
+ """
+ This method convert units to bytes, which follow IEC standard.
+ :param param: value to be converted
+ """
+ if param is None:
+ return None
+ # Get rid of whitespaces:
+ param = ''.join(param.split())
+ # Convert to bytes:
+ if param[-3].lower() in ['k', 'm', 'g', 't', 'p']:
+ return int(param[:-3]) * BYTES_MAP.get(param[-3:].lower(), 1)
+ elif param.isdigit():
+ return int(param) * 2**10
+ else:
+ raise ValueError(
+ "Unsupported value(IEC supported): '{value}'".format(value=param)
+ )
+def follow_link(connection, link):
+ """
+ This method returns the entity of the element which link points to.
+ :param connection: connection to the Python SDK
+ :param link: link of the entity
+ :return: entity which link points to
+ """
+ if link:
+ return connection.follow_link(link)
+ else:
+ return None
+def get_link_name(connection, link):
+ """
+ This method returns the name of the element which link points to.
+ :param connection: connection to the Python SDK
+ :param link: link of the entity
+ :return: name of the entity, which link points to
+ """
+ if link:
+ return connection.follow_link(link).name
+ else:
+ return None
+def equal(param1, param2):
+ """
+ Compare two parameters and return if they are equal.
+ This parameter doesn't run equal operation if first parameter is None.
+ With this approach we don't run equal operation in case user don't
+ specify parameter in their task.
+ :param param1: user inputted parameter
+ :param param2: value of entity parameter
+ :return: True if parameters are equal or first parameter is None, otherwise False
+ """
+ if param1 is not None:
+ return param1 == param2
+ return True
+def search_by_attributes(service, **kwargs):
+ """
+ Search for the entity by attributes. Nested entities don't support search
+ via REST, so in case using search for nested entity we return all entities
+ and filter them by specified attributes.
+ """
+ # Check if 'list' method support search(look for search parameter):
+ if 'search' in inspect.getargspec(service.list)[0]:
+ res = service.list(
+ search=' and '.join('{}={}'.format(k, v) for k, v in kwargs.items())
+ )
+ else:
+ res = [
+ e for e in service.list() if len([
+ k for k, v in kwargs.items() if getattr(e, k, None) == v
+ ]) == len(kwargs)
+ ]
+ res = res or [None]
+ return res[0]
+def search_by_name(service, name, **kwargs):
+ """
+ Search for the entity by its name. Nested entities don't support search
+ via REST, so in case using search for nested entity we return all entities
+ and filter them by name.
+ :param service: service of the entity
+ :param name: name of the entity
+ :return: Entity object returned by Python SDK
+ """
+ # Check if 'list' method support search(look for search parameter):
+ if 'search' in inspect.getargspec(service.list)[0]:
+ res = service.list(
+ search="name={name}".format(name=name)
+ )
+ else:
+ res = [e for e in service.list() if e.name == name]
+ if kwargs:
+ res = [
+ e for e in service.list() if len([
+ k for k, v in kwargs.items() if getattr(e, k, None) == v
+ ]) == len(kwargs)
+ ]
+ res = res or [None]
+ return res[0]
+def wait(
+ service,
+ condition,
+ fail_condition=lambda e: False,
+ timeout=180,
+ wait=True,
+ poll_interval=3,
+ """
+ Wait until entity fulfill expected condition.
+ :param service: service of the entity
+ :param condition: condition to be fulfilled
+ :param fail_condition: if this condition is true, raise Exception
+ :param timeout: max time to wait in seconds
+ :param wait: if True wait for condition, if False don't wait
+ :param poll_interval: Number of seconds we should wait until next condition check
+ """
+ # Wait until the desired state of the entity:
+ if wait:
+ start = time.time()
+ while time.time() < start + timeout:
+ # Exit if the condition of entity is valid:
+ entity = service.get()
+ if condition(entity):
+ return
+ elif fail_condition(entity):
+ raise Exception("Error while waiting on result state of the entity.")
+ # Sleep for `poll_interval` seconds if nor of the conditions apply:
+ time.sleep(float(poll_interval))
+def ovirt_full_argument_spec(**kwargs):
+ """
+ Extend parameters of module with parameters which are common to all oVirt modules.
+ :param kwargs: kwargs to be extended
+ :return: extended dictionary with common parameters
+ """
+ spec = dict(
+ auth=dict(required=True, type='dict'),
+ timeout=dict(default=180, type='int'),
+ wait=dict(default=True, type='bool'),
+ poll_interval=dict(default=3, type='int'),
+ )
+ spec.update(kwargs)
+ return spec
+def check_params(module):
+ """
+ Most modules must have either `name` or `id` specified.
+ """
+ if module.params.get('name') is None and module.params.get('id') is None:
+ module.fail_json(msg='"name" or "id" is required')
+class BaseModule(object):
+ """
+ This is base class for oVirt modules. oVirt modules should inherit this
+ class and override method to customize specific needs of the module.
+ The only abstract method of this class is `build_entity`, which must
+ to be implemented in child class.
+ """
+ __metaclass__ = ABCMeta
+ def __init__(self, connection, module, service, changed=False):
+ self._connection = connection
+ self._module = module
+ self._service = service
+ self._changed = changed
+ @property
+ def changed(self):
+ return self._changed
+ @changed.setter
+ def changed(self, changed):
+ if not self._changed:
+ self._changed = changed
+ @abstractmethod
+ def build_entity(self):
+ """
+ This method should return oVirt Python SDK type, which we want to
+ create or update, initialized by values passed by Ansible module.
+ For example if we want to create VM, we will return following:
+ types.Vm(name=self._module.params['vm_name'])
+ :return: Specific instance of sdk.Struct.
+ """
+ pass
+ def update_check(self, entity):
+ """
+ This method handle checks whether the entity values are same as values
+ passed to ansible module. By default we don't compare any values.
+ :param entity: Entity we want to compare with Ansible module values.
+ :return: True if values are same, so we don't need to update the entity.
+ """
+ return True
+ def pre_create(self, entity):
+ """
+ This method is called right before entity is created.
+ :param entity: Entity to be created or updated.
+ """
+ pass
+ def post_create(self, entity):
+ """
+ This method is called right after entity is created.
+ :param entity: Entity which was created.
+ """
+ pass
+ def post_update(self, entity):
+ """
+ This method is called right after entity is updated.
+ :param entity: Entity which was updated.
+ """
+ pass
+ def create(self, entity=None, result_state=None, fail_condition=lambda e: False, search_params=None, **kwargs):
+ """
+ Method which is called when state of the entity is 'present'. If user
+ don't provide `entity` parameter the entity is searched using
+ `search_params` parameter. If entity is found it's updated, whether
+ the entity should be updated is checked by `update_check` method.
+ The corresponding updated entity is build by `build_entity` method.
+ Function executed after entity is created can optionally be specified
+ in `post_create` parameter. Function executed after entity is updated
+ can optionally be specified in `post_update` parameter.
+ :param entity: Entity we want to update, if exists.
+ :param result_state: State which should entity has in order to finish task.
+ :param fail_condition: Function which checks incorrect state of entity, if it returns `True` Exception is raised.
+ :param search_params: Dictionary of parameters to be used for search.
+ :param kwargs: Additional parameters passed when creating entity.
+ :return: Dictionary with values returned by Ansible module.
+ """
+ if entity is None:
+ entity = self.search_entity(search_params)
+ self.pre_create(entity)
+ if entity:
+ # Entity exists, so update it:
+ entity_service = self._service.service(entity.id)
+ if not self.update_check(entity):
+ if not self._module.check_mode:
+ entity_service.update(self.build_entity())
+ self.post_update(entity)
+ self.changed = True
+ else:
+ # Entity don't exists, so create it:
+ if not self._module.check_mode:
+ entity = self._service.add(
+ self.build_entity(),
+ **kwargs
+ )
+ self.post_create(entity)
+ self.changed = True
+ # Wait for the entity to be created and to be in the defined state:
+ entity_service = self._service.service(entity.id)
+ state_condition = lambda entity: entity
+ if result_state:
+ state_condition = lambda entity: entity and entity.status == result_state
+ wait(
+ service=entity_service,
+ condition=state_condition,
+ fail_condition=fail_condition,
+ wait=self._module.params['wait'],
+ timeout=self._module.params['timeout'],
+ poll_interval=self._module.params['poll_interval'],
+ )
+ return {
+ 'changed': self.changed,
+ 'id': entity.id,
+ type(entity).__name__.lower(): get_dict_of_struct(entity),
+ }
+ def pre_remove(self, entity):
+ """
+ This method is called right before entity is removed.
+ :param entity: Entity which we want to remove.
+ """
+ pass
+ def remove(self, entity=None, search_params=None, **kwargs):
+ """
+ Method which is called when state of the entity is 'absent'. If user
+ don't provide `entity` parameter the entity is searched using
+ `search_params` parameter. If entity is found it's removed.
+ Function executed before remove is executed can optionally be specified
+ in `pre_remove` parameter.
+ :param entity: Entity we want to remove.
+ :param search_params: Dictionary of parameters to be used for search.
+ :param kwargs: Additional parameters passed when removing entity.
+ :return: Dictionary with values returned by Ansible module.
+ """
+ if entity is None:
+ entity = self.search_entity(search_params)
+ if entity is None:
+ return {
+ 'changed': self.changed,
+ 'msg': "Entity wasn't found."
+ }
+ self.pre_remove(entity)
+ entity_service = self._service.service(entity.id)
+ if not self._module.check_mode:
+ entity_service.remove(**kwargs)
+ wait(
+ service=entity_service,
+ condition=lambda entity: not entity,
+ wait=self._module.params['wait'],
+ timeout=self._module.params['timeout'],
+ poll_interval=self._module.params['poll_interval'],
+ )
+ self.changed = True
+ return {
+ 'changed': self.changed,
+ 'id': entity.id,
+ type(entity).__name__.lower(): get_dict_of_struct(entity),
+ }
+ def action(
+ self,
+ action,
+ entity=None,
+ action_condition=lambda e: e,
+ wait_condition=lambda e: e,
+ fail_condition=lambda e: False,
+ pre_action=lambda e: e,
+ post_action=lambda e: None,
+ search_params=None,
+ **kwargs
+ ):
+ """
+ This method is executed when we want to change the state of some oVirt
+ entity. The action to be executed on oVirt service is specified by
+ `action` parameter. Whether the action should be executed can be
+ specified by passing `action_condition` parameter. State which the
+ entity should be in after execution of the action can be specified
+ by `wait_condition` parameter.
+ Function executed before an action on entity can optionally be specified
+ in `pre_action` parameter. Function executed after an action on entity can
+ optionally be specified in `post_action` parameter.
+ :param action: Action which should be executed by service on entity.
+ :param entity: Entity we want to run action on.
+ :param action_condition: Function which is executed when checking if action should be executed.
+ :param fail_condition: Function which checks incorrect state of entity, if it returns `True` Exception is raised.
+ :param wait_condition: Function which is executed when waiting on result state.
+ :param pre_action: Function which is executed before running the action.
+ :param post_action: Function which is executed after running the action.
+ :param search_params: Dictionary of parameters to be used for search.
+ :param kwargs: Additional parameters passed to action.
+ :return: Dictionary with values returned by Ansible module.
+ """
+ if entity is None:
+ entity = self.search_entity(search_params)
+ entity = pre_action(entity)
+ if entity is None:
+ self._module.fail_json(
+ msg="Entity not found, can't run action '{}'.".format(
+ action
+ )
+ )
+ entity_service = self._service.service(entity.id)
+ entity = entity_service.get()
+ if action_condition(entity):
+ if not self._module.check_mode:
+ getattr(entity_service, action)(**kwargs)
+ self.changed = True
+ post_action(entity)
+ wait(
+ service=self._service.service(entity.id),
+ condition=wait_condition,
+ fail_condition=fail_condition,
+ wait=self._module.params['wait'],
+ timeout=self._module.params['timeout'],
+ poll_interval=self._module.params['poll_interval'],
+ )
+ return {
+ 'changed': self.changed,
+ 'id': entity.id,
+ type(entity).__name__.lower(): get_dict_of_struct(entity),
+ }
+ def search_entity(self, search_params=None):
+ """
+ Always first try to search by `ID`, if ID isn't specified,
+ check if user constructed special search in `search_params`,
+ if not search by `name`.
+ """
+ entity = None
+ if 'id' in self._module.params and self._module.params['id'] is not None:
+ entity = search_by_attributes(self._service, id=self._module.params['id'])
+ elif search_params is not None:
+ entity = search_by_attributes(self._service, **search_params)
+ elif 'name' in self._module.params and self._module.params['name'] is not None:
+ entity = search_by_attributes(self._service, name=self._module.params['name'])
+ return entity
diff --git a/lib/ansible/utils/module_docs_fragments/ovirt.py b/lib/ansible/utils/module_docs_fragments/ovirt.py
new file mode 100644
index 0000000000..1d03830365
--- /dev/null
+++ b/lib/ansible/utils/module_docs_fragments/ovirt.py
@@ -0,0 +1,63 @@
+# -*- coding: utf-8 -*-
+# Copyright (c) 2016 Red Hat, Inc.
+# This file is part of Ansible
+# Ansible is free software: you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation, either version 3 of the License, or
+# (at your option) any later version.
+# Ansible is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# GNU General Public License for more details.
+# You should have received a copy of the GNU General Public License
+# along with Ansible. If not, see .
+class ModuleDocFragment(object):
+ # Standard oVirt documentation fragment
+ wait:
+ description:
+ - "True if the module should wait for the entity to get into desired state."
+ auth:
+ required: True
+ description:
+ - "Dictionary with values needed to create HTTP/HTTPS connection to oVirt:"
+ - "C(username)[I(required)] - The name of the user, something like `I(admin@internal)`."
+ - "C(password)[I(required)] - The password of the user."
+ - "C(url)[I(required)] - A string containing the base URL of the server, usually
+ something like `I(https://server.example.com/ovirt-engine/api)`."
+ - "C(token) - Token to be used instead of login with username/password."
+ - "C(insecure) - A boolean flag that indicates if the server TLS
+ certificate and host name should be checked."
+ - "C(ca_file) - A PEM file containing the trusted CA certificates. The
+ certificate presented by the server will be verified using these CA
+ certificates. If `C(ca_file)` parameter is not set, system wide
+ CA certificate store is used."
+ - "C(kerberos) - A boolean flag indicating if Kerberos authentication
+ should be used instead of the default basic authentication."
+ timeout:
+ description:
+ - "The amount of time in seconds the module should wait for the instance to
+ get into desired state."
+ default: 180
+ poll_interval:
+ description:
+ - "Number of the seconds the module waits until another poll request on entity status is sent."
+ default: 3
+ - python >= 2.7
+ - ovirt-engine-sdk-python >= 4.0.0
+ - "In order to use this module you have to install oVirt Python SDK.
+ To ensure it's installed with correct version you can create the following task:
+ pip: name=ovirt-engine-sdk-python version=4.0.0"